Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0843B5867E3B11EFA797569D762E951A.roa
File: 0843B5867E3B11EFA797569D762E951A.roa (raw, json)
Hash identifier: qcxUIPaWtY3qLJPHT7HC9CZoX4F6cEVYtJ9HVJWx4nI=
Subject key identifier: 1F:9E:49:8A:19:03:91:5E:E7:0C:84:43:08:B1:A0:05:6C:FB:B6:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: F486
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0843B5867E3B11EFA797569D762E951A.roa
Signing time: Sun 29 Sep 2024 08:15:48 +0000
ROA not before: Sun 29 Sep 2024 08:15:44 +0000
ROA not after: Mon 30 Dec 2024 08:15:44 +0000
asID: 17561
IP address blocks: 154.197.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 24 Nov 2024 00:05:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62598 (0xf486)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Sep 29 08:15:44 2024 GMT
Not After : Dec 30 08:15:44 2024 GMT
Subject: CN=66f90cb4-429e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e8:fc:e7:86:ee:14:5e:9b:a4:26:4e:65:bd:
cb:09:26:f6:76:19:cc:e4:06:d0:b4:0d:d4:0e:63:
0d:8c:1f:0a:dc:ed:20:13:a4:cb:03:bc:d1:02:f7:
22:0f:a0:81:bb:28:92:37:63:fe:6f:34:1c:54:ec:
5c:11:66:21:32:e9:88:3b:b2:0e:b8:66:39:a2:6d:
a5:17:b6:10:c9:9b:a8:2f:3a:57:ee:6f:aa:53:d8:
fe:51:77:9a:24:ee:5b:38:99:f7:a4:e6:c8:01:8e:
2e:69:0c:21:94:43:42:54:92:f1:12:81:9f:9d:5c:
78:c4:38:60:7b:e9:df:71:cd:de:5d:ff:56:93:41:
5a:25:c6:62:dd:cf:b6:5f:eb:95:d1:60:2b:a2:c7:
72:2e:70:72:e5:31:d4:09:66:11:3d:d5:3d:42:db:
9c:3f:bb:b9:59:c3:04:61:7c:70:8b:b8:97:98:9a:
13:0a:ae:39:5a:b8:26:c2:bf:45:c6:1d:3c:a9:02:
fd:97:3a:5d:50:77:52:52:d8:8d:11:cd:c9:00:3b:
a1:6c:3f:87:02:9f:72:a2:f7:c1:ee:ea:1d:4a:a9:
6f:3f:82:fe:89:17:7a:8c:4c:94:75:80:bb:06:f5:
2b:41:a0:43:9a:80:36:ef:55:c6:99:1c:74:2b:d6:
38:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:9E:49:8A:19:03:91:5E:E7:0C:84:43:08:B1:A0:05:6C:FB:B6:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0843B5867E3B11EFA797569D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.117.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:75:ce:af:8f:94:18:1a:8a:78:be:ee:99:8f:68:03:03:04:
5e:66:f1:2b:29:00:cd:e4:a4:f1:15:89:79:b8:5d:b3:55:4b:
95:5c:ed:2b:50:3f:23:67:b0:fe:6d:31:87:8a:4d:75:53:b4:
eb:70:5c:6a:ac:8b:b1:40:b5:a8:37:56:0c:b6:44:64:0e:98:
aa:1e:5d:1c:b2:b8:9a:16:ee:aa:82:83:08:ad:2d:89:e3:da:
bc:ec:49:b7:8c:86:6f:ce:81:44:9b:b4:61:fa:dd:5d:32:af:
34:c7:96:0e:94:ff:36:8f:23:18:6e:3f:49:1b:8b:9b:d9:da:
14:d0:be:71:ab:a2:26:5a:2e:ec:3b:7b:93:8e:6e:bf:3c:38:
08:17:5b:f0:3f:32:0c:7f:0d:06:a5:72:e0:38:a3:21:8a:35:
0d:03:f5:66:4a:48:23:d0:3b:f3:34:7a:cf:21:94:9c:5c:58:
78:0c:42:70:50:3a:1a:09:11:3c:88:8f:3b:c3:ff:46:d1:47:
dd:04:37:ae:c3:c7:1b:be:0c:99:52:58:9d:94:f7:7c:ae:a3:
2b:a7:df:d2:66:dd:37:4f:81:f0:3a:72:71:09:d5:2e:87:43:
1c:bc:e9:52:f3:13:32:f6:43:c1:78:d4:d8:44:aa:80:b2:ed:
60:5b:f6:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:53 2024 by rpki-client on console-ams.rpki-client.org